dr|z3d
zzz: what do you think about a url blacklist for the http server tunnel?
dr|z3d
ie if a client attempts to access one of the entries in the blacklist, instant ban.
dr|z3d
the purpose is to defend against the increasingly prevalent scan bots looking for vulnerable servers, and also potentially to frustrate web spiders where they're undesirable.
dr|z3d
used in conjunction with tunnel filtering, clients could also be rate-limited as an alternative.